TechTarget

Flaw found in anti-virus software

Products from three popular anti-virus software companies have been found to contain a programming flaw that allows a hacker to...

Products from three popular anti-virus software companies have been found to contain a programming flaw that allows a hacker to crash a user's desktop PC.

Products from Network Associates, Trend Micro and Kaspersky Lab are affected, according to an advisory from German security company AERAsec.

Anti-virus software provides a built-in decompression engine to scan for viruses in compressed files. AERAsec has reported that the decompression engines from the three affected suppliers do not appear to cope with very large bzip2 compressed files.

This can lead to the hard disk filling up and high CPU usage, which results in the PC slowing down as the decompression engine processes the large file.

Kaspersky, whose AntiVirus for Linux 5.0.1.0 was affected, said it had already issued a patch and was now "busy developing a new anti-mail bomb technology that can protect users against such attacks generically".

Trend Micro has published a fix on its website to address the threat to its InterScan Viruswall products for Linux, Solaris, AIX, HP-UX and Sendmail systems.

Network Associates, whose McAfee Virus Scan for Linux v4.16.0 could be affected, said its engineers were addressing the problem.

Dr Peter Bieringer, a partner at AERAsec said, "We are testing other products and we expect to find further problems."

Last week Symantec was forced to correct a problem with its LiveUpdate automatic patch system and also its Norton Anti-Virus software that prevented users from using other applications like Word and Excel.

CW+

Features

Enjoy the benefits of CW+ membership, learn more and join.

Read more

0 comments

Oldest 

Forgot Password?

No problem! Submit your e-mail address below. We'll send you an email containing your password.

Your password has been sent to:

-ADS BY GOOGLE

SearchCIO

SearchSecurity

SearchNetworking

SearchDataCenter

SearchDataManagement

Close